Operating System & Application Patching

When Are Patches Applied?

Patches are identified, downloaded, and applied to managed computers. There are no "patching" periods as updates are continuously applied as needed.

What Security Patches Are Applied?

Microsoft Security Updates
Security updates are released on the second Tuesday of each month by Microsoft. Since most computers are configured to receive these patches automatically via Windows Update, we wait about a week after they are released before we apply them remotely. You can continue to manually install Microsoft updates without interfering with the managed update process.

Windows 10 feature updates are released by Microsoft twice per year.  We configure managed computers to delay feature updates for 4 months so we have time to test for compatibility with campus systems and services.

Microsoft security updates for Windows & Microsoft applications

Apple Security Updates
macOS system and security updates from Apple are usually deployed within a week of release. macOS operating system version updates may be delayed for compatibility testing. You can manually install Apple software updates without interfering with the managed update process.

Apple security updates for OS X & Apple Software

Adobe Security Updates
We install security updates for Adobe Acrobat, Adobe Reader, Flash Player, and Adobe AIR. Adobe Creative Cloud applications are updated via the Adobe Auto-Update system. You can manually install Adobe updates without interfering with the managed update process.

Adobe Security Updates

Clients can manually install patches and updates. Managed patching will only attempt to install patches when a computer meets the criteria for needing a patch. If the patch has already been successfully installed, we will not attempt to install the same patch again.

Application Patching

Updates are applied to software on managed computers to ensure secure versions are being used. Applications targeted for patching include:

  • 7-Zip
  • Adobe Acrobat
  • Adobe Reader
  • Adobe Flash Player
  • Adobe Air
  • AnyConnect Secure Mobility Client (Campus VPN)
  • FileZilla
  • Firefox
  • Google Chrome
  • ITS QuickSupport
  • iTunes
  • Java
  • Microsoft Office
  • Sophos SafeGuard
  • Thunderbird

Other applications may be patched for security purposes if we are aware that insecure versions are in use and we have the ability to deploy updates.

Computer Restart Requests
Some patching and remote management tasks may require you to restart your computer. Most system restarts after patches can be deferred up to three days.

For the best patching experience:
Restart your computer at least once per week to allow patches to complete installation.

Some application patches may only be applied if the applications are not running.  Periodically logging out of all accounts and leaving the computer on overnight will allow these patches to install properly.